Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
571
Views
0
Helpful
2
Replies

Apply SSL cert to interface on replacement ASA device

charlesedstrom
Level 1
Level 1

‎03-22-2021 10:07 AM

We recently replaced an ASA 5508-X with the same model due to a failure. Most of this was setup by a previous admin so we have lost some knowledge. 

 

The SSLVPN using Anyconnect was setup by them and working well. We had an SSL cert installed as well. After replacing the ASA, it does not allow us to select the SSL cert previously used and loaded on this new device. 

 

I've gone to the Remote Access VPN > Advanced > SSL Settings > Certificates, and opened the edit dialogue for interfaces outside. However the drop box does not display any certificates.  The guides I have found are for loading a new cert through ASDM. 

 

Any suggestions on how to change the settings to use the existing certificate for an interface? Or am I looking at going back to Step 1 and loading the certificate as if it is new?

 

 

Labels:
0 Helpful
2 Replies 2

Rob Ingram
VIP
VIP

‎03-22-2021 10:41 AM - edited ‎03-22-2021 10:41 AM

Hi @charlesedstrom 

Did you export the certificate and the private key from the original ASA and import to the new ASA?

If you didn't export the certificate and prviate key, you might have to regenerate a CSR and get the certificate signed from the new ASA.

0 Helpful

charlesedstrom
Level 1
Level 1
In response to Rob Ingram

‎03-22-2021 12:42 PM

Unfortunately the old unit died and there was no more access. Thanks for confirming we will need to start over.

0 Helpful
Customers Also Viewed These Support Documents